Juniper Networks IDP250 Manual do Utilizador descarregar pdf (Página 33)

For IDP deployments, centralized management provides the following benefits:

■ Centralized management for IDP appliances and other network devices

■ Consolidated logs from different devices in a single repository

■ Centralized management of enterprise security policies

■ Simplified management for attack signature updates

■ Role-based administration

For information about installing NSM and using NSM distributed management features,

management objects (such as address objects, service objects, and templates), and

navigational and display features, see the NSM documentation.

J-Security Center Updates Overview

The Juniper Networks Security Center (J-Security Center) routinely makes important

updates available to IDP security policy components, including updates to the IDP

detector engine and the NSM attack database.

The IDP detector engine is a dynamic protocol decoder that includes support for

decoding more than 60 protocols and more than 500 service contexts. You should

update IDP detector engine when you first install IDP, whenever you upgrade, and

whenever alerted to do so by Juniper Networks. You can view release notes for

detector engine updates at

http://www.juniper.net/techpubs/software/management/idp/de/.

The NSM attack database stores data definitions for attack objects. Attack objects

are patterns comprising stateful signatures and traffic anomalies. Security policy

rules direct the IDP engine to inspect traffic for attack objects. We recommend you

schedule automatic updates for the NSM attack database.

For more information about detector engine and attack object updates, see the IDP

Administration Guide.

J-Security Center Updates Overview ■ 17

Chapter 2: Software Overview

1 2 ... 28 29 30 31 32 33 34 35 36 37 38 ... 83 84

Sem comentários

Juniper Networks IDP250 Manual do Utilizador Página 33